Signed applets and commandline import problems

Similar Messages

• Signed applet and HTML parameters

  I've created a signed applet and everything works fine, except for the fact that i can't add parameters to the applet.
  Without the parameters in the HTML the applet inits and starts and can be used without problems. But when I add paramaters, the applet reports a "class not found exception".
  I used HTML-converter to convert the applet tag to object/embed tags.
  Has anyone had the same problem or knows what I'm doing wrong? I'd really appreciate some help.
  Thanks in advance,
  Erik
  My HTML source:
  <OBJECT classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"
  WIDTH = "600" HEIGHT = "400" codebase="http://java.sun.com/products/plugin/1.3/jinstall-13-win32.cab#Version=1,3,0,0">
  <PARAM NAME = CODE VALUE = "TNA" >
  <PARAM NAME = ARCHIVE VALUE = "TNA.jar" >
  <PARAM NAME="type" VALUE="application/x-java-applet;version=1.3.0">
  <PARAM NAME="scriptable" VALUE="false">
  <COMMENT>
  <EMBED type="application/x-java-applet;version=1.3.0" CODE = "TNA" ARCHIVE = "tna.jar" WIDTH = "600" HEIGHT = "400" scriptable=false pluginspage="http://java.sun.com/products/plugin/1.3/plugin-install.html"><NOEMBED></COMMENT>
  </NOEMBED></EMBED>
  </OBJECT>
  <!--
  <APPLET CODE = "TNA" ARCHIVE = "tna.jar" WIDTH = "600" HEIGHT = "400">
  </APPLET>
  -->

  Try this:
  OBJECT classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"
  WIDTH = "600" HEIGHT = "400" codebase="http://java.sun.com/products/plugin/1.3/jinstall-13-win32.cab#Version=1,3,0,0">
  <PARAM NAME = "java_code" VALUE = "TNA.class" >
  <PARAM NAME = "java_archive" VALUE = "TNA.jar" >
  <PARAM NAME = "java_type" VALUE="application/x-java-applet;version=1.3.1">
  <PARAM NAME="scriptable" VALUE="false">
  <COMMENT>
  <EMBED type="application/x-java-applet;version=1.3.0" CODE = "TNA" ARCHIVE = "tna.jar" WIDTH = "600" HEIGHT = "400" scriptable=false pluginspage="http://java.sun.com/products/plugin/1.3/plugin-install.html"><NOEMBED></COMMENT>
  </NOEMBED></EMBED>
  </OBJECT>
  <!--
  <APPLET CODE = "TNA" ARCHIVE = "tna.jar" WIDTH = "600" HEIGHT = "400">
  </APPLET>

• JRE 1.4.x Plugin - Signed Applets and Weird Behaviour (Policy)

  Hello.
  I have recently experienced some strange behaviour related to signed applets and policy files in JRE 1.4.2-b28 ( a friend got the same behaviour in a flavour of 1.4.1-xx as well ). Both tests were on Windows 2000 Professional platforms.
  Initially my unsigned applet, which attempts socket connections to a server different from the download location, fails with security exceptions ( as expected ). Then I did the following to sign the applet jar and configure my environment
  Steps: 1) Import "trusted CA" certificate into ${java.home}/lib/security/cacerts. (JRE home outside the JDK)
  2) Signed the jar using jarsigner and a certificate generated from the "trusted CA" (Entrust CA and certificate).
  3) Imported the signing certificate into the Java plugin using import in the plugin control panel.
  4) Created a new keystore (keytool,jks) and imported the signing certificate into the keystore with alias "developer". The keystore is stored in the user home as .keystore.
  5) Created a .java.policy for the user and attaching the keystore in 4) to it. ( also stored in user home ).
  6) Used the policy tool to grant socketpermissions to the specific codebase ( testing with file:/C:/test/* initially ) signed by "developer"
  After this, when I ran the test page under IE 5.5SP2 and Netscape 7.1 it worked without any security exception. Ditto for using the appletviewer and the policy file I created for the user.
  The weird part occurred when I removed the policy entry from the user policy file. After doing this, Netscape and IE still allow the applet to execute - somehow remembering that it was granted permissions at some point. The appletviewer does not allow it to execute, generating security exceptions.
  It appears the old policy is being cached somewhere, but I cannot find where. If I replace the applet jar with an unsigned version it does fail in IE and Netscape. I tried cleaning the plugin cache and removing the "deployment.certs" files related to the users but still get the same behaviour.
  Does anyone know where the old policy information is being stored ? Does anyone know how to revoke the permissions so that I am restored to my original base environment ( no permissions for "designer" signed applets ) ? Would attempting to utilize the AccessController.doPriveleged( xxxx ) operations in JDK 1.4 avoid all of this confusion with policy files, keystores and certificate storage ? After all the messing about I would like a zero-footprint alternative ( or minimzed footprint anyway ).
  Any ideas would be most welcome.
  Regards,
  James.

  Hello Again.
  I am either enlightened or confused at this point. I found that as long as all of my related Jars are signed ( even by self-signed certificates ) I am granted SocketPermissions for calls outside of the originating server. Unsigned code is refused, but even when the Jars were signed using a self-signed certificate the Socket calls were allowed.
  Am I experiencing the appropriate behaviour in this case ( which would mean not having to utilize policy files to distribute an applet that uses calls to arbitrary servers - e.g. JavaMail ) or am I suffering from something damaged in my environment ?
  It has been a long time since I played with signed applets and I am having difficulty determining what operations require policy file entries/AccessController.doPrivileged() calls and which are granted when a user elects to trust a signed applet without policy.
  Any assistance in clearing up my confusion would be appreciated.
  Regards,
  James.

• IIS, Javascript, Signed Applet and ASP Blank Page Problem

  Hi,
  I'm having a problem using a Signed Applet in a site that runs in a IIS (Windows Server 2003).
  My aspx web page uses the applet to read my smart card and get information from it.
  This applet uses an auxiliar dll (stored in a second Signed Jar file) in order to read the information from my smart card.
  The way the solution is design:
  1) Aspx page is asked from server
  2) Internet Explorer recieve the page and asks the server for it content (images, applet, javascripts, etc)
  3) After this the JVM runs (console opens)
  4) After the Aspx page render fully a javascript register onload fires and call an applet method
  5) Applet receive the call and run the logic of the method:
       - reads the smart card;
       - calls Javascript function in order to fill aspx fields with information from smart card
       - calls Javascript function the simulates a click in a botton of aspx page (in order to call server side part sending data readed from smart card to server)
  5) The server makes some logic with the information receive and responds to client registering in aspx page a call to another Javascrit function
  6) The client received the asnwer from server and runs the Javascript function registered on step 5)
       This Javascript calls another method from applet and runs the following logic:
       - reads more information from smart card;
       - call javascript function in order to fill more fields of aspx page with the information readed
       - calls Javascript function the simulates a click in a botton of aspx page (in order to call server side part sending data readed from smart card to server)
  7) The server makes some logic and call another pages with no Applets
  8) Client asks for a second page with the same applet and we start with another logic express on steps 1);2);3),4);5) and then 7).
  This is all ok, until sometimes the server stop responding correcly for requests regarding this two pages with the Applet.
  When this happens the server just responds with a blank page.
       - with fiddler I can seer the request for the aspx page (that uses the applet)
       - but server responds with a blank html page
  The JVM doesn't fire.
  The IIS log don't show errors.
  The eventviewer doesn't show errors.
  The problem is solved with an IIS reset or a Application Pool reset.
  After a while the problem returns.
  This problem occours for other user in another machine, the server just stops responding correcly to request regarding pages with applets, the other pages still continue to work.
  If we disable Java Control Panel->Advanced->Java Plug-in->Enable the next-generation Java Plug-in the problem seend to stop, but we can't force all clients to disable this option right?
  Or there is a way to force the Applet to run with this option disabled?
  As anyone experience similar problem?
  Regards,
  OF

  This is all ok, until sometimes the server stop responding correcly for requests regarding this two pages with the Applet.
  When this happens the server just responds with a blank page.
  - with fiddler I can seer the request for the aspx page (that uses the applet)
  - but server responds with a blank html pageWell, if http requests look identical in case of success and failure (pay attention to cookies, etc) then it has to be something on the server side.
  It could be that server gets into this wrong state because of previous requests made by applet but it is hard to tell.
  I am not clear how old/new plugin can make a difference unless your applets run in the legacy mode (i.e. you are actually trying to reuse SAME instance of the applet when
  it is loaded next time).
  I'd start with
  1) carefully comparing good/bad sessions
  2) checking whether server will serve correct response to another client when it serves "bad" page for current client
  3) add debug statements to aspx - it is scripted page, may be some condition is not met and then it returns blank?
  4) record all http requests in one session until you get to "error" state and then use any http server testing tool to "replay" this set of requests.
  You should be able to get server into the same state without use of applet. Then you can try to tweak set of requests to see what makes a difference.

• Problem with a signed applet and a user machine.

  Hello. I´m having some problems with a signed applet with some dependences.
  In one particular computer the applet doesn´t load.
  The java version installed in that computer is 1.6.0_25.
  The invocation tag:
  <applet name=applet id="applet" code=Applet/RequestApplet.class width=155 height=21 archive="RequestApplet.jar " MAYSCRIPT>
     <param id="parametro1" name="usuario" value="<Computed Value>">
  </applet>The RequestApplet.jar and dependences:
     bcmail-jdk13-145.jar(signed by bouncy castle), jce-ext-jdk13-145.jar(signed by bouncy castle), AbsoluteLayout.jar, plugin.jar, RequestApplet.jar(signed by me)*this files are all in the same folder.
  The requestApplet.jar manifest:
  Manifest-Version: 1.0
  Ant-Version: Apache Ant 1.7.1
  X-COMMENT: Main-Class will be added automatically by build
  Class-Path: bcmail-jdk13-145.jar jce-ext-jdk13-145.jar plugin.jar Abso
  luteLayout.jar
  Created-By: 10.0-b23 (Sun Microsystems Inc.)
  Main-Class: Applet.RequestApplet
  Name: Applet/ResponseApplet$1.class
  SHA1-Digest: fO5IPiwEH3OhvlprhBecmMIAVJI=
  Name: Applet/NewJApplet.class
  SHA1-Digest: 6XSpm7lQEQRi39TegoUYv2aFJrk=
  Name: Applet/ResponseApplet.class
  SHA1-Digest: v1EbKUFB+QdvO05xx8UzAMNIyRs=
  Name: Applet/ResponseApplet$4.class
  SHA1-Digest: XH4I67psXZTelpz0AMAYc/Ej8QY=
  Name: Applet/RequestApplet$1.class
  SHA1-Digest: KAP5sAC4Thv/6GClkFAdGUVzgYA=
  Name: Applet/ResponseApplet$5.class
  SHA1-Digest: CVPnKrW2SgNEkRzYnVnQe3KGrIU=
  Name: Applet/ResponseApplet$3.class
  SHA1-Digest: SjfW1k1K7BA9m3AxmHi+jvRE+9o=
  Name: Applet/ResponseApplet$2.class
  SHA1-Digest: 3Pu18CZMLuEh7/n3y7XxFSkuNQY=
  Name: Applet/RequestApplet.class
  SHA1-Digest: Tky85es5+o371adetH9XVEI2Z+o=The error:
  java.lang.RuntimeException: java.lang.NoClassDefFoundError: org/bouncycastle/jce/provider/BouncyCastleProvider
       at sun.plugin2.applet.Plugin2Manager.createApplet(Unknown Source)
       at sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run(Unknown Source)
       at java.lang.Thread.run(Unknown Source)
  Caused by: java.lang.NoClassDefFoundError: org/bouncycastle/jce/provider/BouncyCastleProvider
       at java.lang.Class.getDeclaredConstructors0(Native Method)
       at java.lang.Class.privateGetDeclaredConstructors(Unknown Source)
       at java.lang.Class.getConstructor0(Unknown Source)
       at java.lang.Class.newInstance0(Unknown Source)
       at java.lang.Class.newInstance(Unknown Source)
       at sun.plugin2.applet.Plugin2Manager$12.run(Unknown Source)
       at java.awt.event.InvocationEvent.dispatch(Unknown Source)
       at java.awt.EventQueue.dispatchEventImpl(Unknown Source)
       at java.awt.EventQueue.access$000(Unknown Source)
       at java.awt.EventQueue$1.run(Unknown Source)
       at java.awt.EventQueue$1.run(Unknown Source)
       at java.security.AccessController.doPrivileged(Native Method)
       at java.security.AccessControlContext$1.doIntersectionPrivilege(Unknown Source)
       at java.awt.EventQueue.dispatchEvent(Unknown Source)
       at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
       at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
       at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.run(Unknown Source)
  Caused by: java.lang.ClassNotFoundException: org.bouncycastle.jce.provider.BouncyCastleProvider
       at sun.plugin2.applet.Applet2ClassLoader.findClass(Unknown Source)
       at sun.plugin2.applet.Plugin2ClassLoader.loadClass0(Unknown Source)
       at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
       at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
       at java.lang.ClassLoader.loadClass(Unknown Source)
       ... 20 more

  Thanks. I´ll try with your tips. But if i put all the dependences in archive I get this error.
  The tag:
  <applet name=applet id="applet" CODEBASE="." code="Applet/RequestApplet.class" width=155 height=21 archive="bcmail-jdk13-145.jar, jce-ext-jdk13-145.jar, AbsoluteLayout.jar, plugin.jar, RequestApplet.jar " MAYSCRIPT>
     <param id="parametro1" name="usuario" value="<Computed Value>">
  </applet>The error:
  Java Plug-in 1.6.0_25
  Usar versión JRE 1.6.0_25-b06 Java HotSpot(TM) Client VM
  Directorio local del usuario = C:\Documents and Settings\Administrator
  c:   borrar ventana de consola
  f:   finalizar objetos en la cola de finalización
  g:   liberación de recursos
  h:   presentar este mensaje de ayuda
  l:   volcar lista del cargador de clases
  m:   imprimir sintaxis de memoria
  o:   activar registro
  q:   ocultar consola
  r:   recargar configuración de norma
  s:   volcar propiedades del sistema y de despliegue
  t:   volcar lista de subprocesos
  v:   volcar pila de subprocesos
  x:   borrar antememoria del cargador de clases
  0-5: establecer nivel de rastreo en <n>
  basic: Receptor de progreso agregado: sun.plugin.util.GrayBoxPainter$GrayBoxProgressListener@f39b3a
  basic: Plugin2ClassLoader.addURL parent called for http://desarrollo.isaltda.com.uy/CertReq.nsf/bcmail-jdk13-145.jar
  basic: Plugin2ClassLoader.addURL parent called for http://desarrollo.isaltda.com.uy/CertReq.nsf/jce-ext-jdk13-145.jar
  basic: Plugin2ClassLoader.addURL parent called for http://desarrollo.isaltda.com.uy/CertReq.nsf/AbsoluteLayout.jar
  basic: Plugin2ClassLoader.addURL parent called for http://desarrollo.isaltda.com.uy/CertReq.nsf/plugin.jar
  basic: Plugin2ClassLoader.addURL parent called for http://desarrollo.isaltda.com.uy/CertReq.nsf/RequestApplet.jar

• Signing applets and a dialog box.

  What's the procedure to follow when you want an applet to ask the user to grant access to file reading/writing and similar?
  I have signed the .jar, we have a nice .x509 certification at my company etc., but when I was following the tutorials it seemed really complicated. I mean we need the user to just press a "grant permissions" button or similar and then the applet would run.
  Reading the tutorials I got the impression that you need to go through a lot of trouble with exporting the keystore entries and then importing them again (the client that is).
  So, what would I do in order to have a dialog pop up and ask for the granting of permissions? Preferably never to pop up again (if possible).
  Any urls would also be helpful.
  Thanks

  Your system will be much easier to maintain if you place the certificate and policy file on the intranet server. Just follow the 10 steps. Supose your certificate is called MySoftware and you signed your JAR file with this certificate. The certificate is stored in a file called certs.store.
  Inside the policy file you can specify the keystore location:
  keystore "http://intranet.mysoft.com/admin/certs.store", "JKS";
  grant signedBy "MySoftware"
  { permission java.io.FilePermission "<<ALL FILES>>", "read" };
  The advantage of this way of working is everything can be managed remotely. As you can see, the applets that are sigend by the MySoftware certificate have permission for file IO. You can specify different security settings for each certificate in the policy file.
  Every visiter can now access your applet without needing the certificate installed because it can be found on the server.

• Signed Applets And IE Security

  Hi, all!
  I have a signed applet (x.509) run in IE with plug-in 1.4.0b92. In most cases the behavior is as it is expected - a window prompting user to deny, allow or always alow the certificate in the applet appears. But there are some cases when this window doesn't appear and the users are able to run the applet. No certificates are previously installed or granted(at least there aren't any items in Certificates tab or in .keystore file in user home).
  Does anybody could say what is the normal behavior of the plug-in - does it always prompt the user when a signed content is run; does it depend on Security setting in the browser?
  Thanks in advance for any help or further information!
  Regards, Ivo Kolev

  Hi,
  Do you clear you Plug-in Cache explicity ?
  May be sometimes your IE uses the plug in to restore the applet from the cache.
  But I remember having observed the same problem when I used a signed applet. The dialog box appears 'mostly always' but sometimes it just doesnt :)
  if you are able to resolve the problem...let me know

• Signed applet and database connetion...

  Hello,
  Well, I am deploying an applet application which needs to connect with a postgres database.
  I put my application in my hosting then I changed my local java.policy file adding a line as
  permission java.net.SocketPermission "127.0.0.1:5432", "connect,resolve";And my applet works... but I don't want that the user needs to change his policies file.
  I read in somewhere in the forum if the applet is signed the user doesn't need to change anything... then I sign the applet. But it doesn't work. It looks to me that signing the applet is not enough to allows the connection.
  But I don't sure.
  Some body had had the same problem or am I doing some thing wrong?? Other Ideas
  By the way, sorry for my bad english, I hope you can understand what I am saying.
  Bye, and thanks by advance

  4NDR01D3 wrote:
  Thanks for the answer.
  That's a good test, I put some code before the DB connection to create a file:
                File file = new File("tavo.txt");
               boolean success = file.createNewFile();
               if (success) {
                    javax.swing.JOptionPane.showMessageDialog(null, "YES");
                   // File did not exist and was created
               } else {
                    javax.swing.JOptionPane.showMessageDialog(null, "NO");
                   // File already exists
               }And surprisingly it creates the file. but doesn't connect to the database.
  I Sign the applet by command line, like this:
  keytool -genkey -alias signFiles -keystore compstore -keypass pass -dname "cn=salazar" -storepass pass
  jarsigner -keystore compstore -storepass pass -keypass pass -signedjar Sproceso.jar proceso.jar signFiles
  baftos wrote:Or at least one of the classes that are on the stack when you cpnnect to the database does not come from > the signed jar.Out of the Jar are the JDBC files(postgres.jar), it could be the problem??Your JAR is signed OK and this is good.
  DB connections are not prohibited as such.
  What is prohibited are Socket connections, which DB connections use internally.
  Therefore, if any of the classes on the stack, when the Socket connection occurs
  is not from your jar, it will fail. Therefore, the 3rd party files must be all in your jar.
  Technically, this is easy: explode their jar and create your jar in such a way as to contain
  all the files from their jar as well. Do it just as an experiment. If it works, read well
  their licensing terms, which may forbid this. If they forbid it or if in doubt, contact them.

• Signed Applet and page reloading

  Hello,
  I'm having some troubles with an applet i've developped. It serves listening on the serial port, so i had to sign it and that's what i've done. Right.
  Second i put it in a page with the deploy.js from oracle with a jnlp. The applet works, run on the first time... But when i go on another page the applet doesn't standby but destroys itself ! And when i return on it the applet initializes again !
  What i want is the applet loads the first time and stay loaded on background until the browser is closed. So i'd want run it a first time, change the page and return on the applet's page without initializing again.
  Do you have any ideas ?
  Thank you !

  flo360 wrote:
  Erf , so how could i do that... What i don't understand is that everywhere i saw tutos about applets everybody talked about init() launched ONLY on the first time and then start() every time the user comes back on the page. ..I am pretty sure you have it wrong. <tt>init()/destroy()</tt> are called on page entry/reload & exit, while <tt>start()/stop()</tt> are called if the browser is minimized/restored, or maybe if changing between tabs (I'd have to check that).
  Ultimately though, there had been problems with browsers entirely failing to call the <tt>destroy()</tt> method, or implementing their own decisions about when to call <tt>start()/stop()</tt>. I would not rely on any specific behavior for them.

• Signed Applet and no permission

  Hi,
  we have an applet which writes a file on the local disc. Therefore this applet is signed with a valid verisign certificate. Everything works perfect, as long we use the vm 1.4.2_08. Now we changed the vm to 1.4.2_10 and writing a file is no more possible.
  I never used a policy file, because we have a proper signed applet. I found many articles, which all say that if you have a signed applet a modification of security files is not neccessary.
  If I modify the java.policy and add these lines:
  permission java.awt.AWTPermission "readDisplayPixels";
  permission java.awt.AWTPermission "createRobot";
  permission java.io.FilePermission "${user.home}/screenshot.jpg", "read,write,delete";
  everything works ok. But our applet runs on more than 40.000 clients. I am not willing to modify all clients. There must be another solution.
  Any hint is appreciated.
  I have checked some more vm. The problem occurs also with the vm 1.4.2_04.
  thx thorsti
  Message was edited by:
  thorsti16

  Try to use doPrivileged or do the "privileged" action in a thread started
  in run.
  Is the jre asking the user the "do you trust question"? If not someone might
  have switched off trusting signed applets in the java.policy (like a profesional
  company where backoffice has a say in what to trust, not the user).
  Signing applets:
  http://forum.java.sun.com/thread.jsp?forum=63&thread=524815
  second post and reply 18 for the java class file using doprivileged
  A Full trace might help us out:
  http://forum.java.sun.com/thread.jspa?threadID=656028

• Signed applet using ssl connection Problem!

  Hi all.
  The problem is that when I sign my applet and try to connect trough SSL the IAIK throughs ClassCastException when trying to load the client certificate.
  1. I added client certificate ( DER format ) to the applet jar.
  2. I signed an applet with another certificate so it whould have all permissions.
  3. My applet tried to create SSL connection and failed throwing
  java.lang.ClassCastException: iaik.asn1.structures.Name

  I have found a solution for a similar problem. Check out http://java.sun.com/j2se/1.4.1/docs/guide/security/jsse/JSSERefGuide.html#Troubleshooting

• Signed applets and restrictions ?

  Hello,
  I've a question regarding applets security : in fact I've tried to sign myself a Jar file containing all required classes for an application (using the jarsigner tool from Sun). However I'm still getting security problems even of it was digitally signed ans don't understand exactly the causes : Could somebody explain me them ? I understood that I had to sign the Jar files using an official authority like Verisign to get all permissions, is it true ? Would it mean that we can't get these permissions without paying any submissions ?
  TU a lot...
  PA
  http://wwww.doffoel.com

  I understood that I had to sign the Jar files using an official authority like Verisign to get all permissions, is it true ?
  Its not compulsory to go to verisign for signing your applet. You can also create your own certificates with Java's keytool. Its 200% free of cost. However, if you are inclined to build a commercial application, where you don't know the clients, who download the applet, get certs from verisign , Thales et al.
  Would it mean that we can't get these permissions without paying any submissions ?
  No. Not at all. You can always make a descent application without going to the standard certificates and without paying $$$.
  Post your quetions in http://forum.java.sun.com/forum.jsp?forum=63 for expert answers.
  Have a look at this famous thread for signing applets.
  http://forum.java.sun.com/thread.jsp?forum=63&thread=132769
  good wishes,
  Rajesh

• WebService call from signed applet and MS Vista

  Hi.
  I'M developing a system that needs to call web services from a signed applet.
  I have made the solution like this.
  The applet starts by checking that the 12 needed libs is present under the <java home>\lib\ext folder. if not it will download the files automatically and restart the browser.
  This works fine in Windows XP because the signed applet gives me read/write access to the whole machine, but in Vista this isn't possible anymore (as i understand it).
  My question: Is it possible to put these libs in another folder that the ext lib? I have tried to define the "archive" tag in my Object tag but i get the class not found exception thrown in my face.
  If there is a solution to this i would very much like some pointers!
  If not what can i do to get access to the <java home>\lib\ext folder under Vista?
  Regards
  Michael Pallesen

  When invokin applet methods via javascript, you are accessing privileged actions from an unsafe source.
  Depending on your needs, you could either load the system variables in applet init into class variables and return the information contained in the class variables to javascript or wrap the method calls inside AccessController.doPrivileged() calls.

• Please HELP!!! Signed Applet .. Printing Problem..

  Hi.. I wrote a signed applet that would send info to the client's printer.. I have it working in the appletviewer.. but when I try to send something throught the IE, it complains about missing java.awt.print package.. anyone had any problems with printing .. Please help..

  give more detail!

• Signed applets and dialogs

  hi all,
  question to clarify my understanding of signed applets.
  got a bog-standard applet. nothing clever or special.
  got myself a bog-standard cert from thawte.
  signed the applet and put it on a webserver.
  displays the correct security notice on first load. continue and "Always trust this company" etc...
  all runs fine.
  in the applet init, i've put in
  java.awt.AWTPermission perm = new java.awt.AWTPermission("showWindowWithoutWarningBanner");
  try {
    AccessController.checkPermission(perm);
    System.out.println("access allowed?");
  } catch (AccessControlException ex) {
    ex.printStackTrace();
  }open the main frame, and all is good. no banner or access denied exception.
  show a popup menu, or tooltip. no banner.
  display a dialog. oops, a banner "Java Applet Window" and the bottom section of the dialog is covered with the warning msg.
  so i'm confused.
  does this mean that this permission does not apply to dialogs? (if so, what?)
  even with a cert, this msg cannot be removed? (please tell me no)
  wrap and recode all dialog openings with AccessController.doPrivileged? (i dont wanna do this)
  or i missed something with the setup.
  i've been searching the forums for some info, but seem to be going in circles. editing the policy file on all client comps is not a valid option, unless there is sometrick i dont know about .
  tia
  -a

  hi,
  i got the answer from the link
  http://www.javaworld.com/javaworld/jw-12-2000/jw-1215-security.html